CVE-2024-30924 Information

Description

Cross Site Scripting vulnerability in DerbyNet v9.0 and below allows attackers to execute arbitrary code via the checkin.php component.

Reference

https://chocapikk.com/posts/2024/derbynet-vulnerabilities/